Splunk Enterprise Security

After collecting all the logs and writing search quarries, How to do incident management and develop use-cases, and security playbooks.

V4M51
Engager

After collecting all the logs and writing search quarries, How to do incident management and develop use-cases, and security playbooks.

Tags (1)
0 Karma

adonio
Ultra Champion

you can start with these security essentials apps:
https://splunkbase.splunk.com/app/3435/
https://splunkbase.splunk.com/app/3593/
https://splunkbase.splunk.com/app/3693/
there are more in splunkbase

down the road maybe consider Splunk Enterprise Security

0 Karma
Did you miss .conf21 Virtual?

Good news! The event's keynotes and many of its breakout sessions are now available online, and still totally FREE!